General

  • Target

    7z2401-x64.exe

  • Size

    1.5MB

  • Sample

    240809-qpr2msvdra

  • MD5

    de644b4e1086f1315c422f359133543b

  • SHA1

    54be86d121879b0e5d86604297c57a926d665fa8

  • SHA256

    17a507cce4066c4be7db53d64d9a9e11dfecfd4f2411393690506e591b5895cd

  • SHA512

    714d41254352d91834a4b648d613e9b4452b93b097b5781ec5bf3ec7c310a489d3a1c409b2f0a6946822b96f6943b579910d26a5f4324b320d485e856dbdcb1a

  • SSDEEP

    49152:8yEuRNRgYQYk6tC0tkaNuiXatTQY7quUncuTVyvn65:8yEoL7tCzlqLcuBz5

Malware Config

Targets

    • Target

      7z2401-x64.exe

    • Size

      1.5MB

    • MD5

      de644b4e1086f1315c422f359133543b

    • SHA1

      54be86d121879b0e5d86604297c57a926d665fa8

    • SHA256

      17a507cce4066c4be7db53d64d9a9e11dfecfd4f2411393690506e591b5895cd

    • SHA512

      714d41254352d91834a4b648d613e9b4452b93b097b5781ec5bf3ec7c310a489d3a1c409b2f0a6946822b96f6943b579910d26a5f4324b320d485e856dbdcb1a

    • SSDEEP

      49152:8yEuRNRgYQYk6tC0tkaNuiXatTQY7quUncuTVyvn65:8yEoL7tCzlqLcuBz5

    • Event Triggered Execution: Component Object Model Hijacking

      Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.